CWE:
 

Topic
Date
Author
Med.
Smart SMS And Email Manager 3.3 SQL Injection
19.07.2018
Ozkan Mustafa Akkus
Med.
Smart SMS & Email Manager 3.3 contact_type_id SQL Injection
18.07.2018
AkkuS
Med.
ELO (Elektronischer Leitz-Ordner) 9 / 10 SQL Injection
12.07.2018
Jens Regel
Med.
WolfSight CMS 3.2 SQL Injection
11.07.2018
Berk Dusunur
Med.
Elektronischer Leitz-Ordner 10 SQL Injection
10.07.2018
Multiple
Med.
site design by Strawberry Design SQL Injection
08.07.2018
Bl4ck M4n
Med.
Designed & Maintained by It Globaliser - SQL Injection
08.07.2018
BlackErroR
Med.
Designed By Studio Octavo Israel SQL Injection Vulnerability
07.07.2018
KingSkrupellos
Med.
Gettarget EduProTech © 2003-2016 EduPro Technology Pvt. Ltd. SQL Injection Vulnerability
07.07.2018
KingSkrupellos
Med.
Website Design jhchoi Creative Consultancy SQL Injection Vulnerability
07.07.2018
KingSkrupellos
Low
Global Infotech Auth by pass Vulnerability
06.07.2018
indoushka
Med.
SoftExpert Excellence Suite 2.0 SQL Injection
05.07.2018
Seren PORSUK
Med.
Designed By WeyalTech Developed By DjangoSuit Company Afghanistan SQL Injection Vulnerability
04.07.2018
KingSkrupellos
Med.
Powered by Admas Host & Developed by Asian IT SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Design by Recursive Technologies Inc Nepal SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Design by Recursive Technologies Inc Nepal SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Powered By WorldTravelGuide HolidaySmart CMS SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Powered by Admas Host & Developed by Asian IT SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Designed by EMH TheEmhGlobal SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Website Hosted By MTC MtcMedia Scotland SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Maintained By Loojah Bajracharya SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Powered by Schoolsindia.Com School Management System SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Site Developed By İconify Web & Mobile Development SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
ElevationDesign LeighDesignStudio WebDesign South Africa SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Developed By Inside Softwares Pvt. Ltd. Web Design Company India SQL Injection Vulnerability
02.07.2018
KingSkrupellos
Med.
Metaping SQL Injection
01.07.2018
Arm_Legi
Med.
Powered by IvansWeb IWGallery PhotoGallery © 2005/2007 SQL Injection Vulnerability
30.06.2018
KingSkrupellos
Med.
Dj Twilight Ver 2.0 Copyright 1999 - 2018 PicturesGallery SQL Injection Vulnerability
30.06.2018
KingSkrupellos
Med.
Bee Gees Italy © 1998-2017 Enzo Lo Piccolo SQL Injection Vulnerability
30.06.2018
KingSkrupellos
Med.
Powered by dBlog CMS ® Open Source Picture Gallery By InternetCamera.it SQL Injection Vulnerability
30.06.2018
KingSkrupellos
Med.
BirWebMaster AsmWebSitesi Graphics Web Design Services SQL Injection Vulnerability
30.06.2018
KingSkrupellos
Med.
HongCMS 3.0.0 SQL Injection
29.06.2018
Hzllaga
Med.
hycus CMS 1.0.4 SQL Injection
29.06.2018
Berk Dusunur
Med.
Designed By Polypod Developed By Fusion Second SQL Injection Vulnerability
29.06.2018
KingSkrupellos
Med.
Website Designed By Sanminds Hosting Nepal SQL Injection Vulnerability
29.06.2018
KingSkrupellos
Med.
Site By www.clayrose.com Web Design Hosting Management SQL Injection Vulnerability
29.06.2018
KingSkrupellos
Med.
Web services provided by Ciphertek Systems, LLC SQL Injection Vulnerability
29.06.2018
KingSkrupellos
Med.
AlfineSolutions.Com Web Hosting SQL Injection Vulnerability
29.06.2018
KingSkrupellos
Med.
WordPress Plugin iThemes Security < 7.0.3 SQL Injection
26.06.2018
Çlirim Emini
Med.
Designed by SriRam Soft Solutions Pvt. Ltd. India SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
Developed By Jay4web Website Design and Development India SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
Powered by ZTsolution Business England SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
WebSolutions.Ca Web Design and Development Canada SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
Design By Atarim.Com Israel International Internet Agency SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
Webdesign by Lenny's Studio Produced by 21C Media Group SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
Another Quality Site by Seabreeze Consulting Web Design SQL Injection Vulnerability
26.06.2018
KingSkrupellos
Med.
WordPress iThemes Security SQL Injection
26.06.2018
Clirim Emini
Med.
Double Benefit Malaysia Admin Panel Bypass
25.06.2018
Mr.T959
Med.
All India Bar Association Admin Panel Bypass
25.06.2018
Mr.T959
Med.
Rathna Softnet Admin Panel Bypass
25.06.2018
Mr.T959
Med.
FAST RIDING SCHOOL Admin Panel Bypass
25.06.2018
Mr.T959
Med.
Copyright © 1999-2005 NIP Kompanija "Novosti" A.D. Serbia SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Joomla Com_Techedu Courseview Developed in Association with Icta SriLanka SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Designed & Developed by Web Based Business Systems BTOptions.Com SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Copyright © 2008-2011 NEX Studio Nex.Ba Web Design SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Joomla com_regionalm Icta Regional Museum SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Solution by Lankacom Internet Service Provider in Sri Lanka SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Powered by Peernet Company Limited HkPeernet.Com SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Created By Z Axis IT Solution WebDesign SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Web Design Agency ChromaAgency.Com SQL Injection Vulnerability
24.06.2018
KingSkrupellos
Med.
Realizzato da equo.biz Software Hosting Italia SQL Injection Vulnerability
23.06.2018
KingSkrupellos
Med.
Desarrollado por Mancort Spain SQL Injection Vulnerability
22.06.2018
KingSkrupellos
Med.
NewMark CMS 2.1 SQL Injection
22.06.2018
Berk Dusunur
Med.
Creado por Crafi&Deso MachForm PHP Form Builder Spain SQL Injection Vulnerability
22.06.2018
KingSkrupellos
Med.
Creación y diseño White Solutions FactuSOL Web por Software DELSOL SQL Injection Vulnerability
22.06.2018
KingSkrupellos
Med.
Powered by Quaid Technologies QuaidTech Pakistan SQL Injection Vulnerability
21.06.2018
KingSkrupellos
Med.
SleePedia.in an initiative of SleepwellFoundation India Nepal Bhutan SQL Injection Vulnerability
21.06.2018
KingSkrupellos
Med.
Sipbar Sistem Informasi Pelaporan Indonesia Admin Login Bypass and SQL Injection Vulnerability
21.06.2018
KingSkrupellos
Med.
VideoInsight WebClient 5 SQL Injection
20.06.2018
vosec
Med.
Testlink 1.9.18 gettestcasesummary.php SQL Injection 0day
18.06.2018
Maksymilian Arciemowic...
Med.
Joomla Component Ek rishta 2.10 SQL Injection
14.06.2018
Guilherme Assmann
Med.
Joomla! Component EkRishta 2.10 username SQL Injection
12.06.2018
L0RD
Med.
Amirtham Sweets Admin Panel Bypass
11.06.2018
Mr.T959
Med.
dAP SQL Injection Vulnerability
11.06.2018
Mr.T959
Med.
Schools Alert Management Script get_sec.php SQL Injection
11.06.2018
M3@Pandas
Med.
Sito internet e Web marketing realizzati da CyberMarket.it SQL Injection Vulnerability
06.06.2018
KingSkrupellos
Med.
Web Design RGB Multimedia Perugia Italy SQL Injection Vulnerability
06.06.2018
KingSkrupellos
Med.
Powered By 3dee.it Web Design SQL Injection Vulnerability
06.06.2018
KingSkrupellos
Med.
Designed & Maintained By: Phoenix Softwarez Blind SQL Injection Vulnerability
06.06.2018
Mehdi Razmjoo
Low
Desenvolvido e Hospedado por CWD Internet Brazil SQL Injection Vulnerability
05.06.2018
KingSkrupellos
Med.
Copyright CTWare.it © 2014-2018 Italy SQL Injection Vulnerability
05.06.2018
KingSkrupellos
Med.
Israel PGN Network Web Development AppGate SQL Injection Vulnerability
04.06.2018
KingSkrupellos
Med.
Intercom Solutions developer website SQLi
04.06.2018
Arm_Legi
Med.
Smartshop 1 SQL Injection
04.06.2018
Borna Nematzadeh
Med.
Realizzato da Seobox di Massimo Sgambato SQL Injection Vulnerability
04.06.2018
KingSkrupellos
Med.
Website Design By PolarSoft® Inc. GoPolar SQL Injection Vulnerability
03.06.2018
KingSkrupellos
Med.
CopyRight © 2015 Hainan Pingan Car Rental Network China SQL Injection Vulnerability
02.06.2018
KingSkrupellos
Med.
Israel Mp100.info Systems Web Design SQL Injection Vulnerability
02.06.2018
KingSkrupellos
Med.
Buİnteractive Web Design E-Commerce Social Media Digital Marketing SQL Injection
02.06.2018
KingSkrupellos
Med.
AtelyeDigital.Com Web Design and Development SQL Injection Vulnerability
02.06.2018
KingSkrupellos
Med.
3T1K Design and Coding İnternet Services W3Turk SQL Injection
02.06.2018
KingSkrupellos
Med.
Israel © All rights reserved Tvan Servitex Company Ltd. SQL Injection
01.06.2018
KingSkrupellos
Med.
Investor Ningbo Liangzhu Culture Industrial Pack Development Management Co. Ltd. SQL Injection Vulnerability
01.06.2018
KingSkrupellos
Med.
Middle East Design and Programming GT4Host.Com Hosting SQL Injection Vulnerability
01.06.2018
KingSkrupellos
Med.
Grid Pro Big Data 1.0 SQL Injection
01.06.2018
Kagan Capar
Med.
CSV Import And Export 1.1.0 Cross Site Scripting / SQL Injection
01.06.2018
Kagan Capar
Med.
PHP Dashboards NEW 5.5 SQL Injection
01.06.2018
Kagan Capar
Med.
Chitasoft 3.6.2 SQL Injection
01.06.2018
Hesam Bazvand
Med.
New STAR 2.1 Cross Site Scripting / SQL Injection
01.06.2018
Kagan Capar
Med.
Technical Support Huaxia Chemical Network Background Management X-Mobio.Com SQL Injection Vulnerability
31.05.2018
KingSkrupellos


CVEMAP Search Results

CVE
Details
Description
2018-06-08
Medium
CVE-2018-12052

Vendor: Schools alert management script project
Software: Schools aler...
 

 
SQL Injection exists in PHP Scripts Mall Schools Alert Management Script via the q Parameter in get_sec.php.

 
Medium
CVE-2018-12055

Vendor: Schools alert management script project
Software: Schools aler...
 

 
Multiple SQL Injections exist in PHP Scripts Mall Schools Alert Management Script via crafted POST data in contact_us.php, faq.php, about.php, photo_gallery.php, privacy.php, and so on.

 
Medium
CVE-2018-0225

Vendor: Cisco
Software: Appdynamics ...
 

 
The Enterprise Console in Cisco AppDynamics App iQ Platform before 4.4.3.10598 (HF4) allows SQL injection, aka the Security Advisory 2089 issue.

 
2018-06-07
Medium
CVE-2018-0320

Vendor: Cisco
Software: Prime collab...
 

 
A vulnerability in the web framework code of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote attacker to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation on user-supplied input in SQL queries. An attacker could exploit this vulnerability by sending crafted URLs that contain malicious SQL statements to the affected application. This vulnerability affects Cisco Prime Collaboration Provisioning (PCP) Releases 12.1 and prior. Cisco Bug IDs: CSCvd61754.

 
Medium
CVE-2011-0467

Updating...
 

 
A vulnerability in the listing of available software of SUSE SUSE Studio Onsite, SUSE Studio Onsite 1.1 Appliance allows authenticated users to execute arbitrary SQL statements via SQL injection. Affected releases are SUSE SUSE Studio Onsite: versions prior to 1.0.3-0.18.1, SUSE Studio Onsite 1.1 Appliance: versions prior to 1.1.2-0.25.1.

 
2018-05-31
Medium
CVE-2018-11136

Vendor: Quest
Software: Kace system ...
 

 
The 'orgID' parameter received by the '/common/download_agent_installer.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, a blind time-based type).

 
Medium
CVE-2018-11140

Vendor: Quest
Software: Kace system ...
 

 
The 'reportID' parameter received by the '/common/run_report.php' script in the Quest KACE System Management Appliance 8.0.318 is not sanitized, leading to SQL injection (in particular, an error-based type).

 
Medium
CVE-2016-10550

Vendor: Sequelizejs
Software: Sequelize
 

 
sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server into usable data for NodeJS If user input goes into the `limit` or `order` parameters, a malicious user can put in their own SQL statements. This affects sequelize 3.16.0 and earlier.

 
Medium
CVE-2016-10553

Vendor: Sequelizejs
Software: Sequelize
 

 
sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server into usable data for NodeJS. A fix was pushed out that fixed potential SQL injection in sequelize 2.1.3 and earlier.

 
Medium
CVE-2016-10554

Vendor: Sequelizejs
Software: Sequelize
 

 
sequelize is an Object-relational mapping, or a middleman to convert things from Postgres, MySQL, MariaDB, SQLite and Microsoft SQL Server into usable data for NodeJS. Before version 1.7.0-alpha3, sequelize defaulted SQLite to use MySQL backslash escaping, even though SQLite uses Postgres escaping.

 

 


Copyright 2018, cxsecurity.com

 

Back to Top